Add non-FIPS algorithm blocking and selftest checking.

author: Dr. Stephen Henson <steve@openssl.org> 2011-02-15 16:03:47 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2011-02-15 16:03:47 +0000
commit: 25c6542944821afc0693ca7027c769cc8775e90d (patch)
tree: 4c43805e7cbdfb46ee3807152e039d91bad64a09 /fips/rsa
parent: 14567b145199739656e2bf8dd34f5da71f785802 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/fips/rsa/fips_rsa_sign.c b/fips/rsa/fips_rsa_sign.c
index f54d890e73..46d0d4061a 100644
--- a/fips/rsa/fips_rsa_sign.c
+++ b/fips/rsa/fips_rsa_sign.c
@@ -219,6 +219,8 @@ int FIPS_rsa_sign_digest(RSA *rsa, const unsigned char *md, int md_len,
 	/* Largest DigestInfo: 19 (max encoding) + max MD */
 	unsigned char tmpdinfo[19 + EVP_MAX_MD_SIZE];
 
+	FIPS_selftest_check();
+
 	md_type = M_EVP_MD_type(mhash);
 
 	if (rsa_pad_mode == RSA_X931_PADDING)
@@ -326,6 +328,8 @@ int FIPS_rsa_verify_digest(RSA *rsa, const unsigned char *dig, int diglen,
 		return(0);
 		}
 
+	FIPS_selftest_check();
+
 	md_type = M_EVP_MD_type(mhash);
 
 	s= OPENSSL_malloc((unsigned int)siglen);
author	Dr. Stephen Henson <steve@openssl.org>	2011-02-15 16:03:47 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2011-02-15 16:03:47 +0000
commit	25c6542944821afc0693ca7027c769cc8775e90d (patch)
tree	4c43805e7cbdfb46ee3807152e039d91bad64a09 /fips/rsa
parent	14567b145199739656e2bf8dd34f5da71f785802 (diff)